http://www.example.com/openguestbook/header.php?title=</title>[XSS]
http://www.example.com/openguestbook/view.php?offset=[SQL]